CVE-2018-14574
MEDIUM NUCLEIDjango <1.11.15, <2.0.8 - Open Redirect
Title source: llmDescription
django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect.
Nuclei Templates (1)
Django - Open Redirect
MEDIUMby pikpikcu
Shodan:
cpe:"cpe:2.3:a:djangoproject:django"
References (6)
Scores
CVSS v3
6.1
EPSS
0.0858
EPSS Percentile
92.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-601
Status
published
Products (4)
canonical/ubuntu_linux
18.04
debian/debian_linux
9.0
djangoproject/django
1.11 - 1.11.15
pypi/Django
2.0 - 2.0.8PyPI
Published
Aug 03, 2018
Tracked Since
Feb 18, 2026